rhadamanthys | a8b0aa62097048a307b1c77b86bdeb8943fdaa0ec955bb5d4b63671a758c9655 | Triage

Submit
Reports

Overview

overview

Static

static

3

test.exe

windows7-x64

test.exe

windows10-2004-x64

Sharing

General

Target

test.bin
Size

355KB
Sample

240418-gs8n5aee6x
MD5

b8e420187ad6ec1fb0a8ca7068e5a77c
SHA1

22d7ca966bb5ba798045d30911a618bbe6c07e13
SHA256

a8b0aa62097048a307b1c77b86bdeb8943fdaa0ec955bb5d4b63671a758c9655
SHA512

06490ab1f07be2f94cc5444636718b83a79d172f5f8b8bbea900982065211e0aa64f5fdc3873c25867dfc0c2d39f8086e85973c01a61e60ac5ef21a61de3677b
SSDEEP

6144:g2qezd2ab1/RuHk+M3k8M3W7XomjOJCqshrOlumY6DMIewgxQfqysb:gf2R/EEkCQFYDwRqd

Score

10^/10

rhadamanthys stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

test.exe

Resource

win7-20240220-en

rhadamanthys stealer

windows7-x64

5 signatures

300 seconds

Behavioral task

behavioral2

Sample

test.exe

Resource

win10v2004-20240226-en

rhadamanthys stealer

windows10-2004-x64

5 signatures

300 seconds

Malware Config

Targets

- Target
  
  test.bin
- Size
  
  355KB
- MD5
  
  b8e420187ad6ec1fb0a8ca7068e5a77c
- SHA1
  
  22d7ca966bb5ba798045d30911a618bbe6c07e13
- SHA256
  
  a8b0aa62097048a307b1c77b86bdeb8943fdaa0ec955bb5d4b63671a758c9655
- SHA512
  
  06490ab1f07be2f94cc5444636718b83a79d172f5f8b8bbea900982065211e0aa64f5fdc3873c25867dfc0c2d39f8086e85973c01a61e60ac5ef21a61de3677b
- SSDEEP
  
  6144:g2qezd2ab1/RuHk+M3k8M3W7XomjOJCqshrOlumY6DMIewgxQfqysb:gf2R/EEkCQFYDwRqd
Score

10^/10

rhadamanthys stealer
- Rhadamanthys
  Rhadamanthys is an info stealer written in C++ first seen in August 2022.
  stealer rhadamanthys
- Suspicious use of NtCreateUserProcessOtherParentProcess
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

rhadamanthysstealer

behavioral2

rhadamanthysstealer

© 2018-2024

Terms | Privacy